HIGH🇬🇧 English

CVE-2021-26322

CVSS 7.5v3.1pub. 2021-11-16upd. 2024-11-21

Persistent platform private key may not be protected with a random IV leading to a potential “two time pad attack”.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Amd Epyc 7232p

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7232p Firmware

    OS
    Amd
    < romepi-sp3_1.0.0.c
  • Amd Epyc 7251

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7251 Firmware

    OS
    Amd
    < naplespi-sp3_1.0.0.g
  • Amd Epyc 7252

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7252 Firmware

    OS
    Amd
    < romepi-sp3_1.0.0.c
  • Amd Epyc 7261

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7261 Firmware

    OS
    Amd
    < naplespi-sp3_1.0.0.g
  • Amd Epyc 7262

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7262 Firmware

    OS
    Amd
    < romepi-sp3_1.0.0.c
  • Amd Epyc 7272

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7272 Firmware

    OS
    Amd
    < romepi-sp3_1.0.0.c
  • Amd Epyc 7281

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7281 Firmware

    OS
    Amd
    < naplespi-sp3_1.0.0.g
  • Amd Epyc 7282

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7282 Firmware

    OS
    Amd
    < romepi-sp3_1.0.0.c
  • Amd Epyc 7301

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7301 Firmware

    OS
    Amd
    < naplespi-sp3_1.0.0.g
  • Amd Epyc 7302

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7302 Firmware

    OS
    Amd
    < romepi-sp3_1.0.0.c
  • Amd Epyc 7302p

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7302p Firmware

    OS
    Amd
    < romepi-sp3_1.0.0.c
  • Amd Epyc 7351

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7351 Firmware

    OS
    Amd
    < naplespi-sp3_1.0.0.g
  • Amd Epyc 7351p

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7351p Firmware

    OS
    Amd
    < naplespi-sp3_1.0.0.g
  • Amd Epyc 7352

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7352 Firmware

    OS
    Amd
    < romepi-sp3_1.0.0.c
  • Amd Epyc 7371

    HW
    Amd
    wszystkie wersje
  • Amd Epyc 7371 Firmware

    OS
    Amd
    < naplespi-sp3_1.0.0.g
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2023-20520CRITICAL9.8ten sam produkt

Improper access control settings in ASP Bootloader may allow an attacker to corrupt the return address causing...

CVE-2021-46756CRITICAL9.1ten sam produkt

Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow...

CVE-2021-26379CRITICAL9.8ten sam produkt

Insufficient input validation of mailbox data in the SMU may allow an attacker to coerce the SMU to corrupt SM...

CVE-2021-26344HIGH7.2ten sam produkt

An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow an attacker ...

CVE-2023-20578HIGH7.5ten sam produkt

A TOCTOU (Time-Of-Check-Time-Of-Use) in SMM may allow an attacker with ring0 privileges and access to the BIOS...